Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacker Warns Starbucks of Security Flaw, Gets Accused of Fraud

Posted by Soulskill on from the biting-the-hand-that-doesn't-steal-from-you dept.

Andy Smith writes: Here's another company that just doesn't get security research. White hat hacker Egor Homakov found a security flaw in Starbucks gift cards which allowed people to steal money from the company. He reported the flaw to Starbucks, but rather than thank him, the company accused him of fraud and said he had been acting maliciously.

2 of 107 comments (clear)

  1. Re:No good deed goes unpunished by Anonymous Coward · · Score: 4, Informative

    In the old days, he'd have posted it in 2600 and we'd ALL've got some free coffee.

    No free lunches anymore :[

    weird, I had a dream last night I was buying a 2600 from a bookstore. It's been a long time since I've bought one though. Long time since I bought any magazine actually.

    I work in a bookstore and we still sell 2600 regularly.

  2. Re:My email to press@starbucks.com by sumdumass · · Score: 4, Informative

    It's probably hit with a spam filter before it even reaches him.

    In the email servers I administrate, we white list known addresses and segregate others for approval. Generally the higher ups will assign this approval process to their secretaries. However, in the chance that 100 emails come in saying the same things, this usually trips the spam filter and goes into a folder that is generally automatically deleted unless someone detects it as not spam first. This is why form letters and such are not really noticed until someone sends a PR release stating over so many have been sent. then they look at their spam filter logs and realize 200k people are pissed at them.